Hi, If I have disabled an active Directory account, the user won't be able to receive or send mail correct ? I was wondering if I need to also disable the mailbox or is that unecessary ? Thanks,

Disabled mailbox enabled accounts can still receive mail. Disabling a mailbox means removing the exch attributes from an object ( and removing the mailbox) IF you dont want the account to receive mail, send its limits very low or set delivery restrictions to only a certain account or group.

You have to disable the mailbox for this. Disabling the user only will restrict the user from access the Network domain and OWA etc but user will keep getting the email. Regards,Laeeq Qazi|Team Lead(Exchange + Sharepoint + BES + DynamicsCRM) www.HostingController.com

Thanks for the speedy replies ! I guess the account still receiving emails is not a problem but can the user still send email ? (Blackberry, Outlook, OWA) If the situation is permanent I guess the correct thing to do is to disable mailbox first and then after a good backup delete ? Thanks

No user wont be able to send email by disabling the mailbox, user wont even be able to log in using BB, Outlook, OWA. Regards,Laeeq Qazi|Team Lead(Exchange + Sharepoint + BES + DynamicsCRM) www.HostingController.com

If you give explicit full mailbox access permissions to other accounts, they will still be able to open that mailbox even if the owning AD account is disabled.

Good to know ... thanks !

Hubbardt, It depends on what you want to accomplish. Do you have Active Directory in place? If so, you can create the account with a mailbox and disable the account to use it as a resource mailbox. You will have to make sure that the "SELF" account has the Associated External Account checked in the mailbox rights button in the "Allow" row of the "Exchange Advanced Tab" of the account in ADUC. Also, in the mailbox rights button, you will have to add a group and give that group full mailbox access in order for users of the group to add the mailbox to their Outlook profiles. If you are wondering if you disable an user who has left or been terminated can still get email in the mailbox, yes they can but they won't be able to access the mailbox if the account has been disabled. You would also need to make sure that the Associated External Account to the "SELF" account has been unchecked in the "Allow" row (or you could just check the box in the "Deny" row) in the mailbox rights if you don't wish for anymore mail to be sent to that mailbox. Like I said, it just depends on what you want to accomplish by disabling the Active Directory account. Kind regards,